Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 12-02-2017 Uruchomiony przez Flxz (12-02-2017 11:57:35) Uruchomiony z E:\download\scoped_dir_8164_18096 Windows 10 Home Wersja 1607 (X64) (2016-08-10 13:13:10) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2401798506-2639982409-459395285-500 - Administrator - Disabled) Flxz (S-1-5-21-2401798506-2639982409-459395285-1002 - Administrator - Enabled) => C:\Users\test Gość (S-1-5-21-2401798506-2639982409-459395285-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2401798506-2639982409-459395285-503 - Limited - Disabled) mati (S-1-5-21-2401798506-2639982409-459395285-1003 - Limited - Enabled) => C:\Users\mati ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated) Aimersoft Helper Compact 2.5.1 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.1 - Aimersoft) Ansel (Version: 375.70 - NVIDIA Corporation) Hidden Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASUS USB-N13 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.1.3 - ASUS) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) Blackmagic Fusion (HKLM\...\{0B5A990F-DF79-4261-9B7B-24925F438287}) (Version: 8.1.1 - Blackmagic Design) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) Counter-Strike (HKLM\...\Steam App 10) (Version: - Valve) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse) CyberLink PowerDirector 14 (HKLM-x32\...\{6BADCD73-E925-46F7-A295-FF2448632728}) (Version: 14.0.2820.0 - CyberLink Corp.) DaVinci Resolve (HKLM\...\{5BE8D9B2-D7B5-4059-B9F3-BA984FD2E552}) (Version: 12.5.0052 - Blackmagic Design) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team) Glary Utilities PRO 5.65 (HKLM-x32\...\Glary Utilities 5) (Version: 5.65.0.86 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME) inSSIDer 4 (HKLM-x32\...\{106E5A6F-A4C0-47B7-BA51-61DA07A90F9C}) (Version: 4.2.1.109 - MetaGeek, LLC) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden League client alpha (HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\League client alpha 1.0) (Version: 1.0 - Riot Games, Inc) League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Macrorit Partition Extender Free 2016 (HKLM-x32\...\Macrorit_extender) (Version: 2016 - Macrorit Inc.) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility) Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC) Mozilla Firefox 51.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 51.0.1 (x64 pl)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1 - Mozilla) Mozilla Thunderbird 45.6.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.6.0 (x86 pl)) (Version: 45.6.0 - Mozilla) Mozilla Thunderbird 45.7.0 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 45.7.0 (x86 pl)) (Version: 45.7.0 - Mozilla) Mp3tag v2.78 (HKLM-x32\...\Mp3tag) (Version: v2.78 - Florian Heidenreich) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall) NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.2 - Notepad++ Team) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation) NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Sterownik graficzny 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.2 - OBS Project) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera beta 43.0.2442.686 (HKLM-x32\...\Opera 43.0.2442.686) (Version: 43.0.2442.686 - Opera Software) Opera Stable 43.0.2442.806 (HKLM-x32\...\Opera 43.0.2442.806) (Version: 43.0.2442.806 - Opera Software) Panel sterowania NVIDIA 376.54 (Version: 376.54 - NVIDIA Corporation) Hidden Postbox (5.0.10) (HKLM-x32\...\Postbox (5.0.10)) (Version: 5.0.10 (en-US) - Postbox, Inc.) proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7564 - Realtek Semiconductor Corp.) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.5.0 - ShareX Team) SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\Spotify) (Version: 1.0.48.103.g15edf1ec - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.9.2 (HKLM\...\SteelSeries Engine 3) (Version: 3.9.2 - SteelSeries ApS) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Unchecky v1.0.2 (HKLM-x32\...\Unchecky) (Version: 1.0.2 - RaMMicHaeL) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WhatsApp (HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\WhatsApp) (Version: 0.2.3120 - WhatsApp) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) World of Tanks (HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) WPS Office (10.1.0.5652) (HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\Kingsoft Office) (Version: 10.1.0.5652 - Kingsoft Corp.) XnView 2.39 (HKLM-x32\...\XnView_is1) (Version: 2.39 - Gougelet Pierre-e) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03112ECD-BB50-47FC-B96E-D1D360098E9B} - System32\Tasks\Opera scheduled Autoupdate 1485787178 => D:\Programy\Opera\launcher.exe [2017-02-01] (Opera Software) Task: {1CCF4BD0-EBBC-4946-A16F-7C1C98FCEDDA} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] () Task: {24734DD9-110B-45A2-B1BE-BDA064F93448} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] () Task: {2792836E-171C-429B-A8D7-C47991277ECC} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-10] (Adobe Systems Incorporated) Task: {28C920AA-2F9A-4B64-A548-734E9354EA26} - System32\Tasks\WpsExternal_20160721144334 => C:\Users\test\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe [2016-07-21] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {3E9E4817-3682-4D29-92DA-AF45DDBC9524} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation) Task: {49FD198F-7C40-41BC-9A1E-0A2CB439D0FF} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-12-05] (Glarysoft Ltd) Task: {4ED24DBD-58C1-4195-A4DA-78ABCADD02A3} - System32\Tasks\WpsKtpcntrQingTask_test => C:\Users\test\AppData\Local\Kingsoft\WPS Office\10.1.0.5652\office6\ktpcntr.exe [2016-07-21] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {53C5FB5E-FD92-4895-A05C-E094A5844ECC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {598C52F5-03B8-40AD-9798-D387578015E4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation) Task: {5BD6EC00-00F6-46C2-AB53-14CF9EDF9155} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {5E170204-3861-41F7-B0BF-F21851867102} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {5E3E2F29-4553-449A-9021-D6BBDBF903F2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {63DF6337-7E77-4393-B868-37D51D341E9D} - System32\Tasks\AVG-SSU_0516piz => C:\ProgramData\Avg_Update_0516piz\AVG-Secure-Search-Update_0516piz.exe [2016-05-03] () Task: {678A908B-4063-4122-8CC6-83E6C95B5EBB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation) Task: {6E04404D-8F91-43D1-966D-09E98EA6E62D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-31] (Google Inc.) Task: {7756756D-0EF0-403A-B449-B8F00B09E0DD} - System32\Tasks\WpsUpdateTask_test => C:\Users\test\AppData\Local\Kingsoft\WPS Office\10.1.0.5652\wtoolex\wpsupdate.exe Task: {81739DCE-AB82-4557-8170-C03A8A92FF12} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {88EB8BC2-158D-4FF3-9FAC-8F78D0984C41} - System32\Tasks\Opera scheduled Autoupdate 1486414565 => C:\Program Files\OperaStable\launcher.exe [2017-02-06] (Opera Software) Task: {8A53915C-6F0F-4D4C-A60B-5B3F2A23983E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation) Task: {9163A548-1E02-40AF-8624-41800523E93D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-31] (Google Inc.) Task: {9F0D7012-B0D9-4023-9DE3-740999DA8B70} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {A214F91B-05AD-4974-8519-86B384F373CF} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] () Task: {B9C12603-8375-4CED-ADC1-4B25803C4744} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe [2017-02-10] (Adobe Systems Incorporated) Task: {C1F7D490-F9C8-4351-A24F-907ACBF8CECC} - System32\Tasks\AVG-SSU_0516piz_DELETE => C:\ProgramData\Avg_Update_0516piz\AVG-Secure-Search-Update_0516piz.exe [2016-05-03] () Task: {C69C85AD-F02D-4712-9EB2-7A93105B4980} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation) Task: {D4AADC08-FE0F-470A-8D38-039D9CA9A69E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation) Task: {DD94262E-0519-4444-9494-CBC923CA7F71} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation) Task: {ED848315-C65A-4F01-A42C-3C80C0FECA5F} - System32\Tasks\OneDrive Standalone Update Task v2 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {FAF8C164-4B3C-43D2-B70B-1B980F56F12B} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-12-05] (Glarysoft Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\WpsExternal_20160721144334.job => C:\Users\test\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe Task: C:\WINDOWS\Tasks\WpsKtpcntrQingTask_test.job => C:\Users\test\AppData\Local\Kingsoft\WPS Office\10.1.0.5652\office6\ktpcntr.exeÃqing 10.1.0.5652 xxx server_url=hxxp:/kdl1.cache.wps.com/ksodl/wpscfg/client/____client____html____service____bubble.html ic_server_url=hxxp:/info.kingsoftstore.com/wpsv6internet/infos.ads ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Fair AdBlocker App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dcnofaichneijfbkdkghmhjjbepjmble ShortcutWithArgument: C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Fair AdBlocker App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=dcnofaichneijfbkdkghmhjjbepjmble ==================== Załadowane moduły (filtrowane) ============== 2017-02-11 21:13 - 2014-05-06 11:19 - 00096768 ____N () C:\Program Files (x86)\ASUS USB-N13 Wireless LAN Driver\WPSService20.exe 2016-11-11 14:01 - 2016-10-25 21:19 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-11-11 14:01 - 2016-10-25 21:19 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-11 14:02 - 2016-10-25 21:19 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-14 19:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-11-11 14:00 - 2016-12-29 14:16 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-14 19:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-14 19:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-08-10 14:17 - 2016-08-10 14:17 - 00959168 _____ () C:\Users\test\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_2\amd64\ClientTelemetry.dll 2016-09-13 20:33 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-11 21:30 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-11 21:30 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-11 21:30 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-11 21:30 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-11 21:30 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-11 21:30 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-02-06 20:49 - 2017-02-06 20:49 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-02-06 20:49 - 2017-02-06 20:49 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-02-06 20:49 - 2017-02-06 20:49 - 42895872 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-02-06 20:49 - 2017-02-06 20:49 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\roottools.dll 2017-02-09 12:45 - 2017-02-06 08:51 - 53905496 _____ () C:\Program Files\OperaStable\43.0.2442.806\opera_browser.dll 2017-02-09 12:45 - 2017-02-06 08:51 - 59932248 _____ () C:\Program Files\OperaStable\43.0.2442.806\opera_child.dll 2017-02-09 12:45 - 2017-02-09 12:45 - 02559064 _____ () C:\Program Files\OperaStable\43.0.2442.806\libglesv2.dll 2017-02-09 12:45 - 2017-02-09 12:45 - 00100952 _____ () C:\Program Files\OperaStable\43.0.2442.806\libegl.dll 2017-02-10 16:07 - 2017-02-10 16:07 - 31167576 _____ () C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_24_0_0_194.dll 2016-11-11 14:01 - 2016-10-25 21:19 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-11-11 14:01 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-11-11 14:01 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-11-11 14:01 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-11-11 14:01 - 2016-10-25 21:19 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-11-11 14:01 - 2016-10-25 21:19 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-11 14:01 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-11-11 14:01 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-11-11 14:01 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-11-11 14:01 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\WINDOWS\system32\coin95itp.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\WdfCoInstaller01007.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\WinUSBCoInstaller.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\dc3d.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\nuidfltr.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudcdf.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssuddmgr.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudobex.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudrmnet.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\ssudserd.sys:$CmdTcID [64] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-11 11:39 - 2017-02-11 21:19 - 00002024 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com Wykryto więcej niż wyliczono: 4 linii. ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2401798506-2639982409-459395285-1002\Control Panel\Desktop\\Wallpaper -> E:\Dane\tapety\aurora_borealis_atmosphere-wallpaper-2560x1600.jpg DNS Servers: 91.226.6.2 - 91.226.6.12 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: Kingsoft_WPS_UpdateService => 2 MSCONFIG\Services: Motorola Device Manager => 2 MSCONFIG\Services: PST Service => 2 MSCONFIG\Services: SkypeUpdate => 2 HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run32: => "5KPlayer.exe" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "Aimersoft Helper Compact.exe" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\StartupFolder: => "Curse.lnk" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_1B0E81B795B08FCFC87354BB5741BA8D" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "FileHippo.com" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_5E0561D8C8134A3758A07AEA39F66344" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "Mailbird" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-2401798506-2639982409-459395285-1002\...\StartupApproved\Run: => "AutoSizer" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [UDP Query User{E3DCFE6E-F10F-4043-ACAE-5561C71A60D0}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => C:\program files\blackmagic design\davinci resolve\dpdecoder.exe FirewallRules: [TCP Query User{2E4AB9C0-9A9D-43DF-AE3A-6A532E2DCFA0}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => C:\program files\blackmagic design\davinci resolve\dpdecoder.exe FirewallRules: [{39C9654D-7272-4D85-BD6F-2A5A60457DA6}] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{ED595A30-45BF-4936-9011-2F70B0C55927}] => C:\Program Files\Blackmagic Design\Fusion 8\QTServer\FusionQTServer.exe FirewallRules: [{2E4EC908-0F62-4B04-90B9-00F59A0EE811}] => C:\Program Files\Blackmagic Design\Fusion 8\FusionServer.exe FirewallRules: [{13D57AF4-02A4-4C82-945B-E057AFBCD6F2}] => C:\Program Files\Blackmagic Design\Fusion 8\Fusion.exe FirewallRules: [{2DBC4234-3F48-4516-8574-C566D55BDBA8}] => C:\Program Files\Blackmagic Design\Fusion 8\FuScript.exe FirewallRules: [{CA4F7288-691E-4E96-AF2F-901D5DE973C4}] => C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [UDP Query User{383DF464-B610-4D12-8086-33CCBCE9C8BC}C:\games\world_of_tanks\worldoftanks.exe] => C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{F14C92EF-AF64-458D-B573-80051561B613}C:\games\world_of_tanks\worldoftanks.exe] => C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{22EEECE1-F5D3-4012-BB9D-217A7CAC35ED}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{A58717E4-0D97-47FA-A124-8CBF200C6333}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [{BA45468D-E85B-4AE2-A918-CE9F5AD36E8C}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4F4EAB71-C4B8-4CCF-BDB2-767BA1500197}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{302ACD00-7884-4EB4-80DF-126EA25435BA}C:\users\test\appdata\roaming\spotify\spotify.exe] => C:\users\test\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{0026D848-FF54-44A1-968C-F353203B7B80}C:\users\test\appdata\roaming\spotify\spotify.exe] => C:\users\test\appdata\roaming\spotify\spotify.exe FirewallRules: [{CE34F0E9-A628-4339-A9B6-2175E4E25635}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{EBD9E222-6A1C-4413-954A-0F282A828CB6}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{A9C19487-DC9A-4992-AA25-000481947B23}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{A5FCAAF1-7047-4B2C-A865-E49D4B5BBBB5}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9A3D7535-6DA2-483E-A51C-6534FAA72ABC}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C9037F53-A8A9-400F-B95E-CEA36665F490}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C10645A2-4C10-466D-B238-BF5823A88FC9}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0E6612E7-FBCB-4995-9002-0E06F8F51E6D}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{6B52D6E6-6BC7-4827-80F0-2379839DF6B6}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{6A8C5AC1-6AB4-4193-97B5-FF02DE8F69D3}] => C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{AEF508ED-ABC7-4313-B1E5-79FA16ACC709}] => C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{E6A773FD-BD72-46A2-9D97-2333894B4C39}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5A658ADA-8C4E-451C-A459-23CA2B0236CE}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{349B8106-711A-4DAB-B276-D9822AFDB200}] => D:\Programy\Opera\43.0.2442.52\opera.exe FirewallRules: [{AB8CE0AD-BFEA-4A99-9092-4BF0B66E90A9}] => D:\Programy\Opera\43.0.2442.686\opera.exe FirewallRules: [{5D4C2B7A-B0CB-4A71-8BDE-92DFCC425F0B}] => C:\Program Files\OperaStable\42.0.2393.517\opera.exe FirewallRules: [{1F41AC10-0C18-42F3-A567-42E47179E257}] => C:\Program Files\OperaStable\43.0.2442.806\opera.exe FirewallRules: [{43B8FAEA-D7B6-480A-A61C-8C31969FCA8F}] => C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{B9B8BA26-44E3-473B-9B98-362C2A0D11F1}] => C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{8E4FD038-A216-4A08-9F8C-F54BCED00F64}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 29-01-2017 11:28:50 Installed eM Client 30-01-2017 15:32:17 Removed Mailbird 30-01-2017 15:33:05 Removed eM Client 06-02-2017 21:07:29 Removed Mailbird 09-02-2017 15:00:12 Removed Java 8 Update 111 12-02-2017 10:54:10 Installed inSSIDer 4 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (02/12/2017 10:54:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Protokół LLDP (Link-Layer Discovery Protocol) firmy Microsoft. System Error: Odmowa dostępu. . Error: (02/11/2017 09:19:15 PM) (Source: SetupARService) (EventID: 0) (User: ) Description: Nie można uruchomić usługi. System.NullReferenceException: Odwołanie do obiektu nie zostało ustawione na wystąpienie obiektu. w SetupAfterRebootService.SetupARService.OnStart(String[] args) w System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (02/11/2017 09:13:53 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (02/11/2017 09:13:18 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Protokół LLDP (Link-Layer Discovery Protocol) firmy Microsoft. System Error: Odmowa dostępu. . Error: (02/11/2017 05:12:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: opera.exe, wersja: 43.0.2442.806, sygnatura czasowa: 0x5894d78f Nazwa modułu powodującego błąd: opera_child.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x5894fd60 Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x0000000001768758 Identyfikator procesu powodującego błąd: 0xb8c Godzina uruchomienia aplikacji powodującej błąd: 0x01d28481953c6d87 Ścieżka aplikacji powodującej błąd: C:\Program Files\OperaStable\43.0.2442.806\opera.exe Ścieżka modułu powodującego błąd: C:\Program Files\OperaStable\43.0.2442.806\opera_child.dll Identyfikator raportu: 6d2aa0d5-2c23-4997-bd92-70707462c7db Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (02/11/2017 02:47:25 PM) (Source: ESENT) (EventID: 489) (User: ) Description: SettingSyncHost (2076) Próba otwarcia pliku „C:\Users\test\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb” w trybie tylko do odczytu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (02/11/2017 12:44:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: opera.exe, wersja: 43.0.2442.806, sygnatura czasowa: 0x5894d78f Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.14393.479, sygnatura czasowa: 0x582588e6 Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x00000000000c6142 Identyfikator procesu powodującego błąd: 0xe1c Godzina uruchomienia aplikacji powodującej błąd: 0x01d2845c270ca706 Ścieżka aplikacji powodującej błąd: C:\Program Files\OperaStable\43.0.2442.806\opera.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\System32\KERNELBASE.dll Identyfikator raportu: bb91fc79-d2da-43cb-867b-88ec5f5acf86 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (02/11/2017 12:11:23 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (02/11/2017 12:10:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się. Details: AddLegacyDriverFiles: Unable to back up image of binary Protokół LLDP (Link-Layer Discovery Protocol) firmy Microsoft. System Error: Odmowa dostępu. . Error: (02/11/2017 08:21:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 38814969 Dziennik System: ============= Error: (02/12/2017 11:18:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (02/12/2017 11:18:14 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys Error: (02/12/2017 11:18:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (02/12/2017 11:18:14 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys Error: (02/12/2017 11:18:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (02/12/2017 11:18:14 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys Error: (02/12/2017 11:18:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (02/12/2017 11:18:13 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys Error: (02/12/2017 11:18:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (02/12/2017 11:18:13 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys CodeIntegrity: =================================== Date: 2017-02-12 11:54:17.333 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-12 11:54:17.328 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:20:20.857 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:20:16.256 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:19:52.226 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:19:42.403 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:19:40.676 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:19:39.323 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:19:35.445 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 19:17:44.329 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamici =========================== Procesor: Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz Procent pamici w uyciu: 52% Cakowita pami fizyczna: 6101.08 MB Dostpna pami fizyczna: 2910.29 MB Cakowita pami wirtualna: 7125.08 MB Dostpna pami wirtualna: 2891.79 MB ==================== Dyski ================================ Drive c: (Boot) (Fixed) (Total:908.33 GB) (Free:793.51 GB) NTFS Drive d: (SSD) (Fixed) (Total:29.69 GB) (Free:18.52 GB) NTFS Drive e: (Nowy) (Fixed) (Total:892.54 GB) (Free:857.82 GB) NTFS Drive f: (Recover) (Fixed) (Total:59.99 GB) (Free:28.17 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 29.8 GB) (Disk ID: 0905A20A) Partition: GPT. ======================================================== Disk: 1 (Size: 1863 GB) (Disk ID: 0906820C) Partition: GPT. ==================== Koniec Addition.txt ============================