Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 13-07-2017 Uruchomiony przez Kacper (14-07-2017 20:25:20) Uruchomiony z C:\Users\Kacper\Downloads Windows 10 Pro Wersja 1703 (X64) (2017-05-13 23:14:22) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-887847752-4213657936-3099430745-500 - Administrator - Disabled) Gość (S-1-5-21-887847752-4213657936-3099430745-501 - Limited - Disabled) Kacper (S-1-5-21-887847752-4213657936-3099430745-1000 - Administrator - Enabled) => C:\Users\Kacper Konto domyślne (S-1-5-21-887847752-4213657936-3099430745-503 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD} AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: COMODO Firewall (Enabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) 7-Zip 16.03 (x64) (HKLM\...\7-Zip) (Version: 16.03 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated) Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden AIDA64 Extreme v5.92 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.92 - FinalWire Ltd.) Aktualizacje NVIDIA 25.6.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.6.0.0 - NVIDIA Corporation) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.76 - NVIDIA Corporation) Hidden Asystent uaktualnienia do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform) COMODO Internet Security Premium (HKLM\...\{A1E718A7-BB83-41B8-BA96-BC219C322B8E}) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.) Hidden COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 10.0.1.6258 - COMODO Security Solutions Inc.) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Hitman: Absolution (HKLM\...\Steam App 203140) (Version: - IO Interactive) Informacje o systemie Creative (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Killer Bandwidth Control Filter Driver (HKLM\...\{5B7A2B7B-CEA9-4E50-B0E4-E82F204CBE78}) (Version: 1.1.57.1125 - Rivet Networks) Hidden Killer E240x Drivers (HKLM\...\{9DB2FB0F-2731-43A3-9FC7-3C90CD970096}) (Version: 1.1.57.1125 - Rivet Networks) Hidden Killer Network Manager (HKLM\...\{51B5A084-A40D-4F4B-90AA-EF8354EA7D96}) (Version: 1.1.57.1125 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1125 - Rivet Networks) K-Lite Mega Codec Pack 12.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.5 - KLCP) LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.) Microsoft Games for Windows - LIVE (HKLM-x32\...\{4D243BA7-9AC4-46D1-90E5-EEB88974F501}) (Version: 2.0.687.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}) (Version: 2.0.687.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Nero 9 Essentials (HKLM-x32\...\{1a3ea760-2373-41ae-ac06-19937ab39a45}) (Version: - Nero AG) NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.76 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation) NVIDIA Sterownik graficzny 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.76 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Panel sterowania NVIDIA 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 384.76 - NVIDIA Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.9 - Rockstar Games) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.) Sound Blaster Tactic(3D) Alpha (HKLM-x32\...\{2226247D-9846-4370-A1EF-FAA6958F7632}) (Version: 1.0 - Creative Technology Limited) Spotify (HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\Spotify) (Version: 1.0.58.573.g57c9cd87 - Spotify AB) STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) WinRAR 5.40 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers01: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov) ContextMenuHandlers01: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO) ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext64.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Brak pliku ContextMenuHandlers02: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO) ContextMenuHandlers04: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov) ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-27] (NVIDIA Corporation) ContextMenuHandlers06: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov) ContextMenuHandlers06: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2017-07-11] (COMODO) ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext64.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Brak pliku ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0BEDE6D5-85F8-4268-813F-AC6C45192E4F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0F7C7908-1785-4FE9-A1A0-8801B553C091} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1E08A0FC-CF20-4C96-8D99-883CB3E9EDD3} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {2041044C-3ECA-4652-AAFF-0B0A27519CAE} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {39E14EF8-F9A8-4325-AC49-E7EC3A054A35} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-12] (Adobe Systems Incorporated) Task: {3DE792D5-1E7A-45E8-8C17-01141B8E023F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-07-11] (COMODO) Task: {3F43A005-04C0-43AF-95E5-13C5F595E08B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4C5CB739-8778-40BE-B7D8-DE1AC0450052} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5185E9B7-9F87-478E-9E4D-E89770A9BF2C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {547E5CA0-91F6-445C-868C-59AFBF1C621A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {5B398550-F49A-4507-9964-C9B02DF7BDCE} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO) Task: {5CA80FE2-E2E9-45B6-919E-CC010F475CD0} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5F5DDA4D-E248-40AA-9D63-5F451CBA89B6} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation) Task: {6AD4153A-C9FC-4F40-A300-586F883048C1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {6D5192BE-DC2A-4643-A65E-8589EB9A2220} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {6F812802-72AD-4D53-857E-FE3F4C94335B} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO) Task: {7AA869EB-D852-4492-AF75-2DE2DBA20468} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd) Task: {8906060F-4AFF-4BA2-8AB3-E632942FD4C9} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWoW64\muachost.exe [2016-12-14] (MSI) Task: {8E17A568-0EEE-4996-9B43-E78F308FE01E} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-10-02] () Task: {914F8399-18B8-4528-945C-3A484820D06C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation) Task: {9235D040-C06D-45A6-A821-482DC2962ED4} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO) Task: {936A6118-1E74-4161-AE5F-9C511DB67016} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-03] (Google Inc.) Task: {9F2BB12D-A890-45CF-91AD-AF2CB18D7A60} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO) Task: {A00F7E4D-E8D5-46F6-AE40-4BB254D7A4F1} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A3B114C6-57B6-4D7D-88AE-F64A7CA5F594} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2017-07-11] (COMODO) Task: {A714462E-F77E-48CE-9A6A-EE14CD1702DC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_137_pepper.exe [2017-07-12] (Adobe Systems Incorporated) Task: {A8A1CED3-F9FC-4137-AE16-DF2CBB6230A2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {AACB7C3F-56E5-4343-A54D-7ED1E2CB76E9} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AB7669B8-FDF9-4CA3-9187-A6C3775DEDBB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AD396D9A-383C-4887-A400-75F418B58F42} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {B1D27D8F-CDDB-4EC2-9F3A-16F93F14DDBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-03] (Google Inc.) Task: {B3A9C4F7-ABEE-495A-BBFF-778F5EF52BDF} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2017-07-11] (COMODO) Task: {B9C4BD3F-CF85-47AE-8CAB-4C2F834EE3EB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) Task: {BE4037D5-80D5-4CED-8CE7-A0A7046ACB2D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C896B92B-01A7-41DE-B629-11A42F8F0F45} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation) Task: {CC384DC2-0ED0-41D5-8588-CAA622BF3861} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CF9F7A2E-C099-4F66-B469-0655EAD904BB} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {D4C0BFB5-8EAA-447D-B885-22EE9DB97624} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {D5ACF5D5-FAC9-4FAC-82AD-157550FD003C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation) Task: {D793C023-0444-4960-A2C5-30A1ADFD6F7A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D8C4D2B5-A173-4667-8482-DAA47D9604BB} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [2016-10-09] (Intel® Corporation) Task: {F0451738-17E3-4842-8E7E-187F57CDC150} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation) Task: {F1FC0DB1-A6D9-48DB-8BC3-F3E28C1513A6} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {F3AE345A-37AF-448A-A89F-AE3B57679622} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) Task: {F5D8D8E7-C1E2-4CEB-A812-3E0D7A364636} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F922A65B-99B9-4614-91DA-2073B923B472} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-06-08 04:43 - 2017-07-11 13:42 - 00156352 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll 2017-06-08 04:41 - 2017-07-11 13:40 - 00107200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll 2017-06-08 04:42 - 2017-07-11 13:41 - 00244928 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll 2017-05-14 01:06 - 2017-06-27 23:03 - 00133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-10-03 22:28 - 2017-06-21 09:07 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-04-09 10:12 - 2017-04-09 12:48 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe 2010-01-09 20:17 - 2010-01-09 20:17 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2010-01-21 01:40 - 2010-01-21 01:40 - 08794464 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 22:59 - 2017-03-20 05:59 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-06-21 20:51 - 2017-06-21 20:56 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-06-21 20:51 - 2017-06-21 20:56 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-06-21 20:51 - 2017-06-21 20:56 - 43454464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-06-21 20:51 - 2017-06-21 20:56 - 02437120 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\skypert.dll 2016-03-16 11:25 - 2016-03-16 11:25 - 00073912 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2017-07-01 21:16 - 2017-06-23 05:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll 2017-07-01 21:16 - 2017-06-23 05:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\WINDOWS\acpimof.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\Ctregrun.exe:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\ac3acm.acm:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\AERTAC64.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\AERTAR64.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Caf64api.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\CAF64APO2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\CX64APO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\CX64Proxy.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_34.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DCompiler_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dcsx_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_34.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx10_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx11_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx11_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_24.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_25.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_26.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_27.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_28.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_29.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_30.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_31.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_32.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_34.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\d3dx9_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\D3DX9_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPA64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPA64F3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPD64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPD64AF3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPO64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPO64AF3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPP64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DDPP64AF3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL64.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL64.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\FintekIcon1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\FMAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HarmanAudioInterface.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMAPO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMClariFi.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMEQ.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMEQ_Voice.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMHVS.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMLimiter.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\HMUI.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\hpotscl1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\hpowiav1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\hppldcoi.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\IntelSSTAPO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\IntelSstCApoPropPage.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\KAAPORT64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\lagarith.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO4064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO5064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO6064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO7064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioCapture64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRender64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRenderAVX64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO2064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO3064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO4064.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV3apo.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437306.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437557.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437563.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437570.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437586.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437595.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437609.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437619.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437633.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437849.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437866.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437878.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6437892.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispco6438165.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437306.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437557.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437563.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437570.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437586.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437595.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437609.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437619.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437633.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437849.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437866.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437878.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6437892.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\nvdispgenco6438165.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\R4EEA64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\R4EED64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\R4EEG64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\R4EEL64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\R4EEP64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RCoInstII64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RP3DAA64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RP3DHT64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTCOM64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RtDataProc64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTEED64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTEEG64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTEEL64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTEEP64A.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RtlCPAPI64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RtPgEx64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\RTSnMg64.cpl:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SEAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SECOMN64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SEHDHF64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SEHDRA64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SFAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SFCOM64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SFNHK64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\sl3apo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\slcnt64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\slprp64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\sltech64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRAPO64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRCOM64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRRPTR64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRSHP64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRSTSH64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRSTSX64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\SRSWOW64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tadefxapo264.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tbb_waves.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tepeqapo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tosasfapo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\toseaeapo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tossaeapo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\WdfCoInstaller01009.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\WinUSBCoInstaller2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\x264vfw64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\x3daudio1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_6.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\X3DAudio1_7.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XAPOFX1_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XENCFX64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XENcInst.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\XENpld64.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\xinput1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\xinput1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\xinput1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\xvidcore.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\xvidvfw.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\YamahaAE.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\YamahaAE2.dll:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\YamahaAE3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\ac3acm.acm:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_34.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DCompiler_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dcsx_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_34.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx10_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx11_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_24.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_25.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_26.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_27.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_28.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_29.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_30.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_31.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_32.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_33.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_34.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_35.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_36.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_37.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_38.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_39.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_40.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_41.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_42.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\D3DX9_43.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\ff_vfw.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\GameMon.des:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\indexeddbserver.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\lagarith.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\Mscomct2.ocx:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\PnkBstrB.ex0:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\PnkBstrB.exe:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\PnkBstrB.xtr:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\RltkAPO.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\SECOMN32.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\SEHDHF32.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\SFCOM.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\SRCOM.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\x264vfw.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\x3daudio1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_6.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\X3DAudio1_7.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_10.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_6.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_7.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_8.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine2_9.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_6.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xactengine3_7.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAPOFX1_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_0.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_4.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_5.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_6.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\XAudio2_7.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xinput1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xvidcore.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\SysWOW64\xvidvfw.dll:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4Prt.sys:$CmdTcID [130] AlternateDataStreams: C:\WINDOWS\system32\Drivers\Dot4usb.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\dtlitescsibus.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\dtliteusbbus.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\I2cHkBurn.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHD64.sys:$CmdTcID [64] AlternateDataStreams: C:\WINDOWS\system32\Drivers\XENfiltv.sys:$CmdTcID [64] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\sharepoint.com -> hxxps://torus-files.sharepoint.com ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-12-12 00:09 - 00001052 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 pandora-mt2.pl 0.0.0.0 www.pandora-mt2.pl 0.0.0.0 mt2board.com 0.0.0.0 www.mt2board.com 0.0.0.0 ravador.pl 0.0.0.0 www.ravador.pl 0.0.0.0 m2bob.com 0.0.0.0 www.m2bob.com 0.0.0.0 m2bob.net 0.0.0.0 www.m2bob.net ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-887847752-4213657936-3099430745-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kacper\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.9.10 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\StartupFolder: => "Curse.lnk" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-887847752-4213657936-3099430745-1000\...\StartupApproved\Run: => "Spotify Web Helper" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [UDP Query User{E4DA6B18-6FEC-453F-840F-03938D9B3780}C:\users\kacper\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kacper\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{09FF9D14-EA23-4B34-BDAC-2A71A813DFFC}C:\users\kacper\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kacper\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{0605E9A1-11DA-4F49-8370-2A6C8A5931FE}C:\users\kacper\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kacper\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{38B054D0-6709-4293-B679-E57F5DDD828A}C:\users\kacper\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kacper\appdata\roaming\spotify\spotify.exe FirewallRules: [{990D0A80-4AE4-4A5C-A326-2DD0AE45366B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{359B1A11-27B9-41C4-B7BC-7A3D0F884C84}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{2CC3DB08-CD50-4936-8AA9-CEB37B5A640C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{38B7A937-51C5-4135-9AF6-079761BD9D2B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{BA2F2307-EFE0-40DF-BB0A-9CDAFF57CF01}] => (Allow) E:\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{1C6901BA-97A6-4032-829A-D80D8FD0C6CE}] => (Allow) E:\The Crew (Worldwide)\TheCrew.exe FirewallRules: [UDP Query User{96E89262-CC2C-4FBB-BBA5-463F3455F73E}E:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) E:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{482FE956-C34A-4E63-B4D9-2E5A81EBE133}E:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) E:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{E287A6CB-95C5-4469-A7CC-3F474F1921F2}E:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) E:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{A33AE79B-6AB0-495B-B409-4BCF547AF004}E:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) E:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [{4E117E81-85EE-4ABA-9147-D96595E28E9F}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{F2F29EC6-AA08-47D5-A301-1C3100FC9DA8}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{1F15A21C-E2F3-40DB-8BF5-4C34D5063CC3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2014C6A8-95C5-40F3-8DEB-9B2324102FF9}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{C3081F4D-5220-408F-BA9D-254F56A6AE2F}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe FirewallRules: [{71840BA8-A1F7-4201-BDF0-F0E066DDB026}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe FirewallRules: [{9D182B06-3F6A-44D5-8DBE-C4ACF37BCCB5}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe FirewallRules: [{C94BCB69-5B3F-444E-ABD5-029819FC7730}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe FirewallRules: [{8DB2DF3E-2F1C-40F7-901C-5F8C9A6D4976}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [UDP Query User{0A585138-B53F-4FC1-9A70-44A1BCBE4F75}C:\users\kacper\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kacper\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{0D6491B0-68AF-486A-82B2-E6556E1ED0C4}C:\users\kacper\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kacper\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{43D14FB3-C9D8-4831-9B31-79E6A6ED222E}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{B56178CD-C477-4AAC-A2B9-E339E8CDAA5E}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7036123A-DDAF-46F2-A6AE-4CB64F253E97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{66717349-261F-415E-998E-09B40BBC6AE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C38D4E47-24CF-43F0-A4EE-283C0DFE6798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{7FA26474-B5A9-4DA2-8EA1-0ED8366B04F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [TCP Query User{1A962C14-5CF0-444B-9F80-F4B16A743102}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [UDP Query User{258FF8EB-CC9F-49DC-9737-CD90E15E7A50}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [{B512B9DA-3364-4C4D-A773-E2DD03A6D628}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{8421FF6E-12B2-4603-8247-82166BEFBA73}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{93884DFB-667D-4A0B-A0A6-44A537F271A6}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe ==================== Punkty Przywracania systemu ========================= 27-06-2017 11:35:40 Zainstalowane Far Cry 2 30-06-2017 15:43:46 Zainstalowano RESIDENT EVIL 5. 03-07-2017 13:10:31 Zainstalowany program DirectX 05-07-2017 18:55:33 Zainstalowany program DirectX 09-07-2017 21:41:57 Windows Update 13-07-2017 00:07:58 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (07/14/2017 07:29:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2147023170. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/14/2017 07:29:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Kacper-Komputer) Description: Działanie pakietu Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe+App zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (07/14/2017 01:48:32 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/14/2017 12:26:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/13/2017 03:36:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/13/2017 01:18:33 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/12/2017 05:50:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/12/2017 05:07:22 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/12/2017 12:24:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (07/12/2017 12:16:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Kacper-Komputer) Description: Aktywacja aplikacji Microsoft.Windows.Photos_8wekyb3d8bbwe!App nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Dziennik System: ============= Error: (07/14/2017 07:28:42 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: ZARZĄDZANIE NT) Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800703f1: 2017-07 Aktualizacja zabezpieczeń Adobe Flash Player w Windows 10 Version 1703 dla systemów opartych na architekturze x64 (KB4025376). Error: (07/14/2017 07:10:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Program antywirusowy Windows Defender z powodu następującego błędu: System Windows nie może zweryfikować podpisu cyfrowego tego pliku. Ostatnia zmiana sprzętu lub oprogramowania mogła spowodować zainstalowanie pliku, który jest niepoprawnie podpisany lub uszkodzony. Możliwe także, że jest to złośliwe oprogramowanie pochodzące z nieznanego źródła. Error: (07/14/2017 07:09:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Intel(R) Common Connectivity Framework z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (07/14/2017 07:09:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą STCServ. Error: (07/14/2017 07:08:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: ZARZĄDZANIE NT) Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x800703f1: 2017-06 Aktualizacja zbiorcza dla systemu Windows 10 Version 1703 dla systemów opartych na architekturze x64 (KB4022725). Error: (07/14/2017 07:07:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa NetTcpActivator zależy od usługi NetTcpPortSharing, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (07/14/2017 07:07:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CldFlt z powodu następującego błędu: Żądanie nie jest obsługiwane. Error: (07/14/2017 01:48:32 AM) (Source: DCOM) (EventID: 10010) (User: Kacper-Komputer) Description: Serwer Microsoft.Windows.Photos_2017.18062.13720.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (07/14/2017 01:44:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Steam Client Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (07/14/2017 01:44:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Steam Client Service. CodeIntegrity: =================================== Date: 2017-07-14 20:07:51.227 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:13:33.013 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:12:59.395 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:10:03.353 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:07:58.983 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:07:56.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 19:07:56.597 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 03:02:38.746 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 01:59:44.086 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-07-14 01:43:24.509 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Procent pamięci w użyciu: 21% Całkowita pamięć fizyczna: 16330.82 MB Dostępna pamięć fizyczna: 12878.3 MB Całkowita pamięć wirtualna: 32714.82 MB Dostępna pamięć wirtualna: 28983.97 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:223.03 GB) (Free:133.88 GB) NTFS Drive d: () (Fixed) (Total:235.19 GB) (Free:221.7 GB) NTFS Drive e: () (Fixed) (Total:230.47 GB) (Free:119.18 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: EE03EE03) Partition 1: (Not Active) - (Size=235.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=230.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: BBA27728) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Koniec Addition.txt ============================